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DETAILED ACTION 

Response to Amendment 

1 . This action is responsive to communications: application, filed 01/18/2005; 
amendment filed 10/22/2008. 

2. Claims 1-48 are pending in the case. Claims 1 , 21 and 37 are amended by 
applicants. 

3. The text of those sections of Title 35, U.S. Code not included in this action can 
be found in a prior Office action. 

Response to Arguments 

4. Applicant's arguments filed 10/22/2008 have been fully considered but they are 
not persuasive. 

5. Applicants contend that Seheidt does not teach that the encryption keys are 
generated separately at the two different parties. On the contrary Seheidt teaches a split 
key scheme in which part of the key is generated at one party and part of the key is 
generated at the other party. Subsequent to the generation of the two key parts a 
communication process takes place in which "this key component is then sent out on a 
communications channel from the transmitting user to the receiving user" Seheidt - 
abstract. It is precisely this stage of transmission of the key or key part that the present 
invention was intended to avoid. The Examiner respectfully disagrees. Seheidt 
discloses "Each user generates a key component using a cryptographic engine. The 
key component ... is a pseudorandom sequence of bits of particular length", col. 4, lines 
35-41 . Seheidt teaches the key component is generated and this key component is 
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transmitted through a secure channel not the key itself. Seheidt further discloses "Once 
a match is established at both locations ... forming identical complete keys at both 
locations, col. 4, lines 64-69. Therefore, applicants' arguments are not persuasive. 

Claim Rejections - 35 USC § 103 

6. Claims 1-4, 19-23 and 37-39 are rejected under 35 U.S.C. 103(a) as being 
unpatentable over Seheidt et al. (US 5,375,169) in view of Tan (US 6,490,353). 

7. With respect to claim 1 , Seheidt et al. teaches that an apparatus for use by a first 
party for key management for secure communication with a second party, said key 
management being to provide at each party, simultaneously remotely, identical keys for 
said secure communication without transferring said keys over any communication link 
(apparatus and method, for the secure communication of a message from a transmitting 
user to a receiving user using a split key scheme, col. 4, lines 29-32), the apparatus 
comprising: 

a datastream extractor, configured to extract a bitstream from data exchanged between 
said parties (the key components generated by the cryptographic engine is a 
pseudorandom sequence of bits of a particular length with an appended error detection 
field which mathematically calculated based on the pseudorandom sequence, col. 4, 36- 
41), Seheidt et al doesn't teach random selector. However, Tan teaches that a random 
selector configured for selecting, from said bitstream, a series of bits in accordance with 
a randomization seeded by said data exchanged between said parties, said 
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randomization being identical to a randomization carried out at said second party, 
thereby ensuring that said series of bits is identical at both parties (a random selector, 
which selects a sub-key start position and a sub-key length, col. 5, lines 47-48), a key 
generator configured for separately generating at said first party a key for 
encryption/decryption based on said series of bits (firstly, a seed and master key are 
generated, col. 8, line 43 and Fig. 1) thereby to separately generate a key at said first 
party which is identical to a key likewise generated at said second party based on said 
exchanged information, thus to manage key generation in a manner repeatable at said 
parties, see col. 4, lines 64-69. It would have been obvious at the time the invention was 
made to a person having ordinary skill in the art to modify Seheidt et al. with random 
selector and key generator of Tan to prevent the need for transferring keys and secure 
communication of a message from a transmitting user to a receiving user. 

4. With respect to claim 2, Tan teaches that the random selector being operable to 
use results of said randomization as addresses to point to bits in said datastream (The 
random selector may operate in any suitable manner. It may select a sub-key start 
position and sub-key length directly, or, more preferably, it may select these by 
randomly selecting table entry numbers, where selections of pre-defined suitable start 
positions and lengths have previously been entered in randomly-ordered tables, col. 5, 
lines 61-66) 

5. With respect to claim 3, Seheidt et al. teaches that said key generator operable 
to generate a new key after a predetermined number of message bits have been 
exchanged between said parties (new keys are generated every time a new message is 
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communicated between parties, col. 8, lines 31-33). It would have been obvious at the 
time the invention was made to a person having ordinary skill in the art to modify the 
above references to prevent compromise of the key. 

6. With respect to claim 4, Seheidt et al. teaches that said predetermined number of 
message bits being substantially equal to a length in bits of said key (alternatively, the 
key may remain the same as long as the same parties are in communication, col. 8, 
lines 33-34). 

7. With respect to claim 19, Seheidt et al. teaches that said system being operable 
to provide key management for a symmetric cryptography algorithm (An alternative to 
the public key system is a private key system known as a symmetric key system which 
is a cryptographic system using the same key for both encryption and decryption. This 
key is transmitted from the sender to the receiver over a secure channel in parallel with 
the encrypted message, col. 3, lines 38-44). 

8. With respect to claim 20, Seheidt et al. teaches that being constructed 
modular-wise such that said cryptography algorithm is exchangeable (In addition to the 
protection of the keys themselves, selecting the proper key sequence and increasing 
the frequency with which the key sequence is changed can enhance the security of this 
type of protection, col. 2, lines 2-6). 

9. Claim 21 differs from claim 1 only in that claim 1 is an apparatus claim whereas, 
claim 21 is a system claim. Thus, claim 21 is analyzed as previously discussed with 
respect to claim 1 above. 
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10. With respect to claim 22, Seheidt et al. teaches that said primary bitstream is 
obtainable as a stream of bits from a data communication process between said two 
parties (The key component is a pseudorandom sequence of bits with an appended 
error detection field which is mathematically calculated based on the pseudorandom 
sequence, abstract). 

1 1 . With respect to claim 23, Seheidt et al. teaches that teaches that said bits in said 
primary bitstream are separately identifiable by an address, and wherein said selector is 
operable to select said bits by random selection of addresses (The pseudorandom 
sequence is generated using known pseudorandom sequence generating means within 
the cryptographic engine 24, for example, through the use of serial shift registers having 
selected outputs modulo-2 added and fed forward, col. 6, lines 29-34) 

12. Claim 37 differs from claim 1 only in that claim 1 is an apparatus claim whereas, 
claim 37 is a method claim. Thus, claim 37 is analyzed as previously discussed with 
respect to claim 1 above. 

1 3. With respect to claim 38, Seheidt et al. teaches that said primary data source is 
obtainable as a stream of bits from a communication process between said two parties 
(The key component is a pseudorandom sequence of bits with an appended error 
detection field which is mathematically calculated based on the pseudorandom 
sequence, Abstract). 

14. With respect to claim 39, Seheidt et al. teaches that said primary data source 
comprises a stream of data bits divisible into data units and comprising selecting at 
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random from the data bits of each data unit (The pseudorandom sequence is generated 
using known pseudorandom sequence generating means within the cryptographic 
engine 24, for example, through the use of serial shift registers having selected outputs 
modulo-2 added and fed forward col. 6, lines 29-35). 

15. Claims 5-18, 24-36 and 40-48 are rejected under 35 U.S.C. 103(a) as being 
unpatentable over Seheidt et al. (US 5,375,169) in view of Tan (US 6,490,353) as 
applied to claim 1 above, and further in view of Khamharn et al. (5,375,169). 

16. With respect to claim 5, Seheidt et al. and Tan don't teach that a control 
messagerfor sending control messages to said remote party, thereby to indicate to said 
remote party a state of said apparatus to enable said remote party to determine whether 
said remote party is synchronized therewith to generate an identical key. However, 
Khamharn et al. teaches that transmitting at least a first message from the transmitter to 
the receiver; and, in response to the receiver receiving the first message, the receiver 
detecting the absence of synchronization between the transmitter and the receiver and 
performing a resynchronization procedure to restore synchronization between the 
transmitter and the receiver, see abstract. It would have been obvious at the time the 
invention was made to a person having ordinary skill in the art to modify the above 
references with Khamharn et al. to perform and restore synchronization between the 
transmitter and the receiver. 
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17. With respect to claim 6, Khamharn et al. teaches that a synchronized state 
determiner, for determining from control messages received from a remote party 
whether said apparatus is synchronized therewith to generate an identical key (The 
value stored in NSQN 66 is compared to SQN2 42 to determine what level of 
resynchronization may be required. Subsequent to a successful message 20 
authentication, memory location SQN2 42 is updated to contain the value of SQN1 28 
stored in NSQN 66, col. 5, lines 27-33). 

18. With respect to claim 7, Khamharn et al. teaches that a resynchronizer, 
associated with said synchronous state determiner, said resynchronizer having a 
resynchronization random selector for selecting, from a part of said bitstream previously 
used by said random selector, a series of bits in accordance with a randomization 
seeded by said data exchanged between said parties (the random initial state is used 
as starting point, col. 3, lines 33-34), in the event of determination of synchronization 
loss, thereby to regain synchronization (Once synchronization is lost, the system does 
not respond and appears inoperative. Resynchronization is required to restore the 
system operation to normal, col. 1 , lines 19-22). 

19. With respect to claim 8, Khamharn et al. teaches that said series of bits is a 
series of bits previously used by said random selector (the random initial state is used 
as starting point, col. 3, lines 33-34). 

20. With respect to claim 9, Khamharn et al. teaches that said control messager is 
operatively connected to said synchronous state determiner, thereby to include within 
said control messages a determination of synchronization loss (transmitting at least a 
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first message from the transmitter to the receiver; and, in response to the receiver 
receiving the first message, the receiver detecting the absence of synchronization 
between the transmitter and the receiver and performing a resynchronization procedure 
to restore synchronization between the transmitter and the receiver, abstract). 

21 . With respect to claim 10, Khamharn et al. teaches that said control messager is 
operatively connected with said resynchronizer, to control said resynchronizer to carry 
out said selection in the event of receipt of a message from said remote party that said 
remote party has lost synchronization (A first resynchronization process occurs within 
synchronization window 44, a resynchronization area whereby, subsequent to a first 
message 20 reception, SQN1 28 received is greater than SQN2 42 by not more than K 
increments, col. 4, lines 17-21). 

22. With respect to claim 1 1 , Khamharn et al. teaches that said data communication 
being arranged in cycles, said part of said bitstream being exchangeable in each cycle 
(Current systems require a manual sequence of operations for restoring 
synchronization, such as depressing lock and unlock buttons for a predetermined period 
of time and waiting for a lock cycle feedback, col. 1 , lines 22-26). 

23. With respect to claim 12, Khamharn et al. teaches that said cycle being arranged 
into sub-units, each said cycle having an exchange point at its beginning for carrying out 
said exchange (CRC 32 which is a cyclic redundancy check code to permit receiver 18 t 
validate the integrity of message transmission, col. 3, lines 48-49). 

24. With respect to claim 13, Khamharn et al. teaches that said messager being 
usable to exchange control messages with said remote party to ensure that a same 
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bitstream part is used for resynchronization at both said parties (Message structure 20 
provides for system security by preventing the deception of receiver 18 by interception, 
col. 3, lines 50-51). 

25. With respect to claim 14, Khamharn et al. teaches that said messager being 
usable to vary a control message in accordance with a sub-cycle current at a 
synchronization loss event, thereby to control said remote party to resynchroni-ze using 
a same bitstream part (It is when received SQN1 28 does not match an expected value 
based on SQN2 42 that synchronization between transmitter 12 and receiver 18 is 
considered lost and resynchronization must occur, col. 3, lines 13-16). 

26. With respect to claim 15, Khamharn et al. teaches that operable to respond to 
messages sent by a remote party following said synchronization loss event, to revert to 
same said bitstream part as said message indicates that said remote party intends to 
use (In this case, receiver 18 will execute a resynchronization process dependent upon 
receiving and verifying a second and a third message 20 reception, col. 4, lines 44-47). 

27. With respect to claim 16, Khamharn et al. teaches that circuitry for determining 
which of itself and said remote party is a transmitting party and being operable to control 
said synchronization when it is a transmitting party and to respond to control commands 
of said remote party when said remote party is said transmitting party (Transmitter 12 
emits RF signals 16 in response to use activation of one or more buttons 14 associated 
with transmitter 12. Receiver 18 periodically checks for the presence of a transmission 
and performs the requested function only if the fields within message structure 20 (FIG. 
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2) are intended for that particular receiver and contains valid security information, col. 3, 
lines 1-7). 

28. With respect to claim 17, Khamharn et al. teaches that said synchronized state 
determiner comprises: a calculation circuit for carrying out an irreversible calculation on 
any one of said bitstream, said randomization, said key and derivations thereof, and a 
comparator for comparing a result of said calculation with a result received from said 
remote party, thereby to determine whether said parties are in synchronization (an initial 
first sequence number value (SQN1 ) 28, a random initial state (not shown), and a 
cryptographic key (not shown), col. 3, lines 27-30). 

29. With respect to claim 18, Khamharn et al. teaches that said irreversible 
calculation comprises a one-way function (a calculation using an algorithm to combine a 
cryptographic key with function code 24 and CRC 32, col. 3, lines 46-48). 

30. With respect to claim 24, Khamharn et al. teaches that each selector comprises 
an address generator and each address generator is identically set (function code 24 
which identifies the fuction being requested, col. 3, lines 40-41). 

31 . With respect to claim 25, Khamharn et al. teaches that a controller for 
exchanging control data between said parties to enable each party to determine that 
each selector is operating synchronously at each party (transmitting at least a first 
message from the transmitter to the receiver; and, in response to the receiver receiving 
the first message, the receiver detecting the absence of synchronization between the 
transmitter and the receiver and performing a resynchronization procedure to restore 
synchronization between the transmitter and the receiver, see abstract). 
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32. With respect to claim 26, Khamharn et al. teaches that redundancy check data, 
and a hash encoding result, of at least some of the bits from said derived bit source (a 
cryptographic key with function code 24 and CRC 32 which is a cyclic redundancy 
check code, col. 3, lines 47-48). 

33. With respect to claim 27, Khamharn et al. teaches that redundancy check data, 
and a hash encoding result, of at least some of the bits of said randomization (a 
cryptographic key with function code 24 and CRC 32 which is a cyclic redundancy 
check code, col. 3, lines 47-48). 

34. With respect to claim 28, Kahmharn et al. teaches that redundancy check data, 
and a hash encoding result, of at least some of the bits from said key (a cryptographic 
key with function code 24 and CRC 32 which is a cyclic redundancy check code, col. 3, 
lines 47-48). 

35. With respect to claim 29, Khamharn et al. teaches that redundancy check data of 
at least some of said addresses, and a hash encoding result of at least some of said 
addresses (a cryptographic key with function code 24 and CRC 32 which is a cyclic 
redundancy check code, col. 3, lines 47-48). 

36. With respect to claim 30, Khamharn et al. teaches that at each party a 
resynchronizer operable to determine from said control data that synchronization has 
been lost between the parties and to regain synchronization based on a predetermined 
earlier part of said derived bit source (It is when received SQN1 28 does not match an 
expected value based on SQN2 42 that synchronization between transmitter 12 and 
receiver 18 is considered lost and resynchronization must occur, col. 4, lines 13-16). 
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37. With respect to claim 31 , Khamharn et al. teaches that at each party a 
resynchronizer operable to determine from control data exchanged between said parties 
that synchronization has been lost between said parties and to regain synchronization 
based on a predetermined earlier part of said derived bit source synchronization (A first 
resynchronization process occurs within synchronization window 44, a 
resynchronization area whereby, subsequent to a first message 20 reception, SQN1 28 
received is greater than SQN2 42 by not more than K increments, col. 4, lines 17-21). 

38. With respect to claim 32, Khamharn et al. teaches that said data communication 
process being arranged in cycles, said predetermined earlier part being exchangeable 
in each cycle (Current systems require a manual sequence of operations for restoring 
synchronization, such as depressing lock and unlock buttons for a predetermined period 
of time and waiting for a lock cycle feedback, col. 1 , lines 22-26). 

39. With respect to claim 33, Khamharn et al. teaches that said cycles being 
arranged into sub-units, each said cycle having an exchange point at its beginning for 
carrying out said exchange of said predetermined earlier part of said derived bit source 
(CRC 32 which is a cyclic redundancy check code to permit receiver 18 t validate the 
integrity of message transmission, col. 3, lines 48-49). 

40. With respect to claim 34, Khamharn et al. teaches that said controller being 
usable to include in said control messages, data to ensure that a predetermined earlier 
part of said derived bit source of a same cycle is used for resynchronization at both said 
parties (In this case, receiver 18 will execute a resynchronization process dependent 
upon receiving and verifying a second message 20 reception, Co. 4, lines 36-40) 
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41 . With respect to claim 35, Khamharn et al. teaches that said controller being 
usable to vary a control message in accordance with a sub-cycle current at a 
synchronization loss event, thereby to control said remote party to resynchronize using 
same said predetermined earlier part of said derived bit source (It is when received 
SQN1 28 does not match an expected value based on SQN2 42 that synchronization 
between transmitter 12 and receiver 18 is considered lost and resynchronization must 
occur, col. 3, lines 13-16). 

42. With respect to claim 36, operable to respond to messages sent by a remote 
party following said synchronization loss event, to revert to same said predetermined 
earlier part of said derived bit source as said message indicates that said remote party 
intends to use (In this case, receiver 18 will execute a resynchronization process 
dependent upon receiving and verifying a second and a third message 20 reception, 
col. 4, lines 44-47). 

43. With respect to claim 40, Seheidt et al. teaches that said bits in said data units 
are separately identifiable by addresses, and comprising selecting said bits by using 
said randomizer as an address pointer (The pseudorandom sequence is generated 
using known pseudorandom sequence generating means within the cryptographic 
engine 24, for example, through the use of serial shift registers having selected outputs 
modulo-2 added and fed forward, col. 6, lines 29-34). 

44. With respect to claim 41 , Seheidt et al. teaches that selecting is carried out by 
using identically set pseudorandom data generation at each party, and using said 
derived data source as a seed for said pseudorandom data generation (The 
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pseudorandom sequence is generated using known pseudorandom sequence 
generating means within the cryptographic engine 24, for example, through the use of 
serial shift registers having selected outputs modulo-2 added and fed forward, col. 6, 
lines 29-34). 

45. With respect to claim 42, Khamharn et al. teaches that exchanging control data 
between said parties to enable each party to determine whether they are operating 
synchronously with said other party (transmitting at least a first message from the 
transmitter to the receiver; and, in response to the receiver receiving the first message, 
the receiver detecting the absence of synchronization between the transmitter and the 
receiver and performing a resynchronization procedure to restore synchronization 
between the transmitter and the receiver, see abstract). 

46. With respect to claim 43, Khamharn et al. teaches that redundancy check data of 
at least some of said derived data source, and a hash encoding result of at least some 
of said derived data source (a cryptographic key with function code 24 and CRC 32 
which is a cyclic redundancy check code, col. 3, lines 47-48). 

47. With respect to claim 44, Khamharn et al. teaches that determining from said 
control data that synchronization has been lost between the parties and regaining 
synchronization based on a predetermined earlier part of said derived data source (It is 
when received SQN1 28 does not match an expected value based on SQN2 42 that 
synchronization between transmitter 12 and receiver 18 is considered lost and 
resynchronization must occur, col. 3, lines 13-16). 
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48. With respect to claim 45, Khamharn teaches that further comprising a step of 
exchanging said predetermined earlier part of said derived data source at 
predetermined intervals (sequence of operations for restoring synchronization, such as 
depressing lock and unlock buttons for a predetermined period of time and waiting for a 
lock cycle feedback, col. 1 , lines 24-27). 

49. With respect to claim 46, Khamharn teaches that determining a possibility of 
each party being at a different cycle at synchronization loss, and controlling said 
resynchronization to use a same predetermined earlier part of said derived data source 
at both parties (It is when received SQN1 28 does not match an expected value based 
on SQN2 42 that synchronization between transmitter 12 and receiver 18 is considered 
lost and resynchronization must occur, col. 3, lines 13-16). 

50. With respect to claim 47, Khamharn teaches that further comprising creating in 
advance a future cycle's predetermined earlier part of said derived data source for 
resynchronizing with a party that has already moved to such a cycle (resynchronization 
process occurs in resynchronization area 52 whereby, subsequent to a first message 20 
reception, SQN1 28 received is grater than auto-resync window 48 yet less than SQN2 
42, col. 4, lines 41-44). 

51 . With respect to claim 48, Seheidt et al. teaches that in use to provide key 
management for a symmetric cryptography algorithm (An alternative to the public key 
system is a private key system known as a symmetric key system which is a 
cryptographic system using the same key for both encryption and decryption. This key 
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is transmitted from the sender to the receiver over a secure channel in parallel with the 
encrypted message, col. 3, lines 38-44). 

Conclusion 

THIS ACTION IS MADE FINAL. Applicant is reminded of the extension of time 
policy as set forth in 37 CFR 1 .136(a). 

A shortened statutory period for reply to this final action is set to expire THREE 
MONTHS from the mailing date of this action. In the event a first reply is filed within 
TWO MONTHS of the mailing date of this final action and the advisory action is not 
mailed until after the end of the THREE-MONTH shortened statutory period, then the 
shortened statutory period will expire on the date the advisory action is mailed, and any 
extension fee pursuant to 37 CFR 1 .136(a) will be calculated from the mailing date of 
the advisory action. In no event, however, will the statutory period for reply expire later 
than SIX MONTHS from the mailing date of this final action. 

Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to SHAHROUZ YOUSEFI whose telephone number is 
(571) 270-3558. The examiner can normally be reached on Monday-Thursday 9:00- 
5:00pm. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Gilberto Barron can be reached on 571-272-3799. The fax phone number 
for the organization where this application or proceeding is assigned is 571-273-8300. 
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Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. 
Status information for unpublished applications is available through Private PAIR only. 
For more information about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-217-9197 (toll-free). If you would like assistance from a 
USPTO Customer Service Representative or access to the automated information 
system, call 800-786-9199 (IN USA OR CANADA) or 571-272-1000. 



IS. Y.l 

Examiner, Art Unit 2432 



/Benjamin E Lanier/ 

Primary Examiner, Art Unit 2432 



